Inside BlackMatter: Technical Analysis of BlackMatter Ransomware

Hello friends!

In this article, we will analyze an executable file that repeatedly found itself on the work network of one of our clients and created problems for the client.

The client asked to reverse-engineer the threat, conduct a security audit and provide a solution, which we did.

We are always glad to cooperate in the field of cyber security, reverse engineering and security audit!


Read more
SRMA 2023-04-10 342


Friends, hello everyone!

In this article, we will talk about such an important part of every antivirus engine as the hashing module. We'll talk about data verification, blacklisting and whitelisting, finding out how "similar" or "different" data is, and touching on the topic of fuzzy hashing algorithms.

Get comfortable in your chairs!


Read more
DSAVE 2023-03-18 590

PE Import Table Parser

Hello dear friends!

In this series of articles, together with you, we will write the simplest anti-virus engine with a number of static and dynamic analyzers, analyze the principles of operation of each of them, and get acquainted with related technologies along the way.

The series of articles will be useful for both novice developers and more experienced ones, who, we hope, will be able to find useful information for themselves!

We express our gratitude to all our partners and colleagues who help us in our work and life! Guys, you are the best!

Read more
DSAVE 2023-03-14 1333